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Amendments to the Claims 

The listing of claims will replace all prior versions, and listings of claims in the 
application. 

1 . {currently amended) A computer-implemented method for creating and/or 
modifying a dynamically update-able, searchable packet classification databank, 
comprising the steps of: 

receiving a collection of packet classification rules, each packet 
classification rule being represented as a plurality of binary locations bit positions ; 

analyzing each of said plurality of bit positions to select a first bit position 
to partition said collection into at least two sets of siblings, wherein said analyzing 
includes applying at least one of empirical knowledge or a computed metric for each bit 
position to select said first bit position; 

selecting an index key corresponding to said first bit position based on a 
common location among said packet classification rules at a first l e v e l, such as to e nabl e 
partitioning of said coll e ction into two or more siblings at a s e cond l e vel, wh e r e in the 
binary value of said common location repres e nts a featur e wh e r e by th e composition of 
e ach sibling contains pack e t classification rul e s possessing a common f e atur e; 

analyzing said plurality of bit positions to select a second bit position to 
partition said at least two sets of siblings into subsets of siblings; and 

selecting an index key corresponding to said second bit position based on 
a s e cond common location among said pack e t classification rul e s at s aid se cond l e v e l, 
such as to enabl e partitioning of at least on e of said two or mor e siblings at said second 
level into two or more siblings at a third lev e l . 

2. {currently amended) The method of claim 1, further comprising the step 

of: 
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selecting an index key corresponding to a third bit position to partition 
said subsets of siblings into further subsets bas e d on a third common location among said 
pack e t classification rul e s at said third lev e l, wh e r e as to enabl e partitioning of at least 
one of said two or mor e siblings at said third l e v e l into two or mor e siblings at a fourth 

TwTUl. 

3. {currently amended) The method of claim 1, further comprising the step 

of: 

repetitively partitioning said subsets of siblings into a hierarchy of subsets 
e ach sibling at a respective level into two or more siblings at a lower level until reaching 
a partition threshold. 

4. {currently amended) The method of claim 3, wherein said partition 
threshold is predicated on a maximum number of rules residing in a subset of siblings at 
a respective lower level said sibling at said respective l e vel . 

5. {currently amended) The method of claim 3, wherein said partition 
threshold is predicated on a maximum number of respective lower levels. 

6. {original) The method of claim 1, wherein each sibling at a respective 
level has a substantially equivalent quantity of said packet classification rules. 

7. {currently amended) The method of claim 1, wherein each of said 
selecting an index key stop compris e s analyzing steps include the steps of: 

measuring a difference in cardinality at each bit position location 
coordinat e that has not been selected previously as an for a corresponding index key; and 
computing an optimization parameter for each location coordinat e bit 

position . 
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8. {currently amended) The method of claim 7, wherein each of said 
s e l e cting an ind e x key s t e p furth e r comprises said analyzing steps further include the step 
of: 

selecting an index key corresponding to a location coordinate bit position 
having an optimization parameter closest to a predetermined value. 

9. {currently amended) The method of claim 7, wherein each of said 
selecting an ind e x key st e p furth e r compris e s said analyzing steps further include the step 
of: 

selecting an index key corresponding to a first location coordinat e bit 
position determined to have an optimization parameter closest to a predetermined value 
in response to determining multiple location coordinat e s bit positions having an 
optimization parameter closest to a predetermined value. 

10. {currently amended) The method of claim 1, further comprising the step 

of: 

receiving at least one packet classification rale within said collection that 
has one or more location coordinat e s bit positions denoted as both binary having a 
plurality of values. 

11. {currently amended) The method of claim 10, wherein each of said 
s e l e cting an ind e x k e y step compris e s said analyzing steps further include the steps of: 

measuring a difference in cardinality at each location coordinat e bit 
position that has not been selected previously as an for a corresponding index key; and 

computing an optimization parameter for each location coordinat e bit 

position . 

12. {original) The method of claim 11, wherein said computing an 

optimization parameter comprises: 

determining an evenness of division for siblings at a respective level; and 
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determining an average cardinality. 

13. {currently amended) The method of claim 1, further comprising the steps 

of: 

receiving at least one packet classification rule within said collection that 
has two or more location coordinat e s bit positions that denote a feature having a range of 
values; and 

decomposing said at least one packet classification rule into two or more 
packet classification divisional rules, wherein said s e l e cting an index k e y st e ps analyzing 
steps further include processing said divisional rules as part of said collection. 

14. {currently amended) The method of claim 1, further comprising the step 

of: 

manifesting a query key based on the selected index keys s e l e ct e d to 
partition said pack e t classification rul e s . 

15. {original) The method of claim 14, further comprising the steps of: 
enabling addition and/or deletion of a packet classification rule in said 

collection; and 

revising said query key in response to said addition and/or deletion of a 
packet classification rule. 

16. {original) The method of claim 15, further comprising the step of: 
performing said revising said query key on a periodically scheduled basis. 

17. {original) The method of claim 1 5, further comprising the step of: 
performing said revising said query key on demand. 

18. {original) The method of claim 14, further comprising the steps of: 
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receiving a packet; 

applying said query key to said packet to produce a packet key; and 
searching said collection to detect a packet classification rule matching 
said packet key. 

19. {currently amended) The method of claim 18, further comprising the steps 

of: 

detecting multiple packet classification rules matching said packet key; 

and 

selecting a collision location key bas e d on — a common location 
corresponding to a bit position to enable partitioning of said multiple packet 
classification rules. 

20. {original) The method of claim 18, further comprising the steps of: 
detecting multiple packet classification rules matching said packet key; 

and 

sequentially comparing each of said multiple packet classification rules 
with said packet to detect a matching rule 

21. {original) The method of claim 18, further comprising the step of: 
enabling addition and/or deletion of a packet classification rule in said 

collection during said searching said collection. 

22. {currently amended) A packet classification system, comprising: 

a first memory for receiving a collection of packet classification rules, 
wherein each packet classification rule is represented as a plurality of bit positions binary 
locations ; and 

a mask constructor for selecting one or more index keys, 

wherein each index key is based on a common location among said pack e t 

classification rul e s r e siding at a lev e l, and corresponds to a bit position that enables 
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partitioning of said packet classification rules into at least two sets of siblings at a lower 
level, 

wherein said mask constructor applies at least one of empirical knowledge 
or a computed metric for each bit position to select the bit position corresponding to each 
index key two or mor e siblings at anoth e r l e v e l , and 

wherein said mask constructor continues to select index keys to 
repetitively partition each sibling set of siblings at a respective level into two or mor e at 
least two sets of siblings at a lower level until reaching a partition threshold. 

23. {original) The system of claim 22, wherein said mask constructor 
assembles said one or more index keys into a query key. 

24. {original) The system of claim 23, further comprising: 

a key extractor for applying said query key to produce a refined rule 
collection from said collection located within said first memory; and 

a second memory for storing said refined rule collection. 

25. {original) The system of claim 24, wherein said second memory is a 
content addressable memory. 

26. {original) The system of claim 23, further comprising: 

a key extractor for applying said query key to an incoming packet to produce a 

packet key. 

27. {original) The system of claim 26, further comprising: 

a packet classifier for applying said packet key to detect a packet classification 

rule matching said packet key. 
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28. {original) The system of claim 26, wherein said key extractor is a 
multiplexor, wherein said multiplexor is configured to select field descriptors from said 
packet based on said query key. 

29. {original) The system of claim 28, wherein said multiplexor is a crossbar 
switch or a bit shifter. 

30. {currently amended) A computer program product comprising a computer 
useable medium having computer readable program code means embedded in said 
medium for causing an application program to e x e cut e on a computer [used] to classify 
packet flows, said computer r e adabl e program cod e m e ans comprising: 

a first computer readable program code means for causing the computer to 
select one or more index keys, 

wherein said first computer readable program code means selects each 
index key such that each index key is bas e d on a common location among a s e t of packet 
classification rules residing at a level, and corresponds to a bit position that enables 
partitioning of said s e t a set of packet classification rules into two or more siblings at 
anoth e r sets of siblings at a lower level, 

wherein said first computer readable program code means applies at least 
one of empirical knowledge or a computed metric for each location to select the bit 
position corresponding to each index key, and 

wherein said first computer readable program code means continues to 
select index keys to repetitively partition each sibling set of siblings at a respective level 
into two or mor e at least two sets of siblings at a lower level until reaching a partition 
threshold; and 

a second computer readable program code means for causing the 
computer to assemble said one or more index keys into a query key. 
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31. (new) A computer-implemented method for creating and/or modifying a 
dynamically update-able, searchable packet classification databank, comprising the steps 
of: 

receiving a collection of packet classification rules, each packet 
classification rule being represented as a plurality of location coordinates; 

selecting an index key based on a common location coordinate among 
said packet classification rules at a first level, such as to enable partitioning of said 
collection into two or more siblings at a second level, wherein the coordinate value of 
said common location coordinate represents a feature whereby the composition of each 
sibling contains packet classification rules possessing a common feature; and 

selecting an index key based on a second common location coordinate 
among said packet classification rules at said second level, such as to enable partitioning 
of at least one of said two or more siblings at said second level into two or more siblings 
at a third level, 

wherein each of said selecting an index key step comprises the steps of: 
measuring a difference in cardinality at each location coordinate that has 
not been selected previously as an index key; and 

computing an optimization parameter for each location coordinate. 

32. (new) The method of claim 31, wherein each of said selecting an index 
key step further comprises the step of: 

selecting an index key corresponding to a location coordinate having an 
optimization parameter closest to a predetermined value. 

33. (new) The method of claim 31, wherein each of said selecting an index 
key step further comprises the step of: 

selecting an index key corresponding to a first location coordinate 
determined to have an optimization parameter closest to a predetermined value in 
response to determining multiple location coordinates having an optimization parameter 
closest to a predetermined value. 
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34. {new) A computer-implemented method for creating and/or modifying a 
dynamically update-able, searchable packet classification databank, comprising the steps 
of: 

receiving a collection of packet classification rules, each packet 
classification rule being represented as a plurality of location coordinates; 

receiving at least one packet classification rule within said collection that 
has one or more location coordinates denoted as having a plurality of values; 

selecting an index key based on a common location coordinate among 
said packet classification rules at a first level, such as to enable partitioning of said 
collection into two or more siblings at a second level, wherein the coordinate value of 
said common location coordinate represents a feature whereby the composition of each 
sibling contains packet classification rules possessing a common feature; and 

selecting an index key based on a second common location among said 
packet classification rules at said second level, such as to enable partitioning of at least 
one of said two or more siblings at said second level into two or more siblings at a third 
level, 

wherein each of said selecting an index key step comprises the steps of: 
measuring a difference in cardinality at each location coordinate that has 
not been selected previously as an index key; and 

computing an optimization parameter for each location coordinate. 

35. (new) The method of claim 34, wherein said computing an optimization 
parameter comprises: 

determining an evenness of division for siblings at a respective level; and 
determining an average cardinality. 



Atty. Dkt. No. 1875.0360001 



